Paradigmatic and Exploration of Blind Worm
Journal Title: INTERNATIONAL JOURNAL OF ENGINEERING TRENDS AND TECHNOLOGY - Year 2012, Vol 3, Issue 3
Abstract
Active worms pose major security threats to the Internet. This is due to the ability of active worms to propagate in an automated fashion as they continuously compromise computers on the Internet. Active worms evolve during their propagation and thus pose great challenges to defend against them. In this paper, we investigate a new class of active worms, referred to as Tarnen Worm (C-Worm in short). The C-Worm is different from traditional worms because of its ability to intelligently manipulate its scan traffic volume over time. Thereby, the C-Worm camouflages its propagation from existing worm exploration systems based on analyzing the propagation traffic generated by worms. We analyze characteristics of the C-Worm and conduct a comprehensive comparison between its traffic and non-worm traffic (background traffic). We observe that these two types of traffic are barely distinguishable in the time domain. However, their distinction is clear in the frequency domain, due to the recurring manipulative nature of the C-Worm. Motivated by our observations, we design a novel spectrum-based scheme to detect the C-Worm. Our scheme uses the Power Spectral Density (PSD) distribution of the scan traffic volume and its corresponding Spectral Flatness Measure (SFM) to distinguish the C-Worm traffic from background traffic. Using a comprehensive set of exploration metric s and real-world traces as background traffic, we conduct extensive performance evaluations on our proposed spectrum-based exploration scheme. The performance data clearly demonstrates that our scheme can effectively detect the C-Worm propagation. Furthermore, we show the generality of our spectrum-based scheme in effectively detecting not only the C-Worm, but traditional worms as well.
Authors and Affiliations
Yellamandaiah Gogula1, E. Jhansi Rani
Keywords
Related Articles
- EP ID EP151302
- DOI -
- Views 91
- Downloads 0
A Comparative Study Of Impulse Noise Reduction In Digital Images For Classical And Fuzzy Filters
Efficient impulse noise removal is an important issue in image processing. It is caused error in the data communication generated in noisy sensors or communication channels or by error during the data capture from digita...
A Novel Hybrid Flower Pollination Algorithm with Chaotic Harmony Search for Solving Sudoku Puzzles
Flower Pollination algorithm (FP) is a new nature-inspired algorithm, based on the characteristics of flowering plants .In this paper, a new hybrid optimization method called improved Flower Pollination Algorithm with Ch...
Using TAM Model To Measure The Use Of Social Media For Collaborative Learning
The social media have all generations of Internet users, becoming a prominent communications tool and found to be facilitating teaching and learning by collaborative learning, the part of sharing and collaborating activi...
Synthesis of a MSP430 Microcontroller Core using Multi-Voltage Techniques
This paper describes regarding Implementation of Multi-Voltage low power techniques for power improvement. Here Multi-Voltage technique is applied to MSP430 16-bit microcontroller core victimization TSMC 65nm &...
Comparing PI controller Performance for Non Linear Process Model
This paper demonstrates the efficient method of tuning PI controller parameters by comparing different tuning rules. The method implies an analytical calculation of the controller gainܭ,Integral time ߬for a PI co...